edgecase_datafeed 236 2022-04-29 This is the date at the time of creation of this datafeed article. A checkpoint article containing a hash of this datafeed article may be created on this date or at a later date. 215 10 2021-04-10 bitcoin fe062b308ad6254b71ae4af5bbe8ec485105ebb9ae9cf1b905b115f596dd827a 678607 1HtwyqFWNVDoSEVqZwjBRRAV2oEsi8aQXr 13MfGs39pR5aEK4iKdoLjVYXKwi6Y3uyPq 1Hdv9WprSk5ugh12TpsLvEt6tfdSmnz1SG
Review_of_the_Ledger_Nano_S_hardware_wallet stjohn_piano_2 2022-04-28 yes Summary A Ledger Nano S hardware wallet is a robust and convenient solution for offline Bitcoin storage. I recommend the Ledger Nano as a hardware wallet for: 1) beginners (due to its guidance and simplicity) 2) busy professionals (due to its convenience and security) Before using one, however, I recommend that you read the "Important points" section immediately below this summary. The rest of the article contains more technical details and opinions, which you can skip if you are not interested. Important points x) When you create a Bitcoin account on the device, you should always carefully select the "Legacy" Bitcoin address type (this is the best security available for long-term storage). You can see the Legacy option by clicking "Show all address types" when you create a new Bitcoin account in the Ledger Live application. x) Be sure to confirm that the device you receive is genuine. Follow the steps shown in: hyperlink http://support.ledger.com/hc/en-us/articles/4404389367057-Is-my-Ledger-device-genuine-?support=true support.ledger.com/hc/en-us/articles/4404389367057-Is-my-Ledger-device-genuine-?support=true x) Receiving payments: When you go through the "Receive" process in the Ledger Live application, it will prompt you to generate a new address every time, for each new payment. I prefer to store the first address in a text file and always receive payments at that address. Example of storing an address in a text file: Ledger Nano S: Personal Bitcoin account 1: Address 1 14gLgyVBiK7i7gtPLLYcVCAKfBuj1rL9JT 14gLgyVBiK7i7gtPLLYcVCAKfBuj1rL9JT 14gLgyVBiK7i7gtPLLYcVCAKfBuj1rL9JT Copying the address three times avoids any worry about possible typos. If I need to send an address to someone else, I usually send them the block of three lines, for the same reason. It's also important to label addresses clearly and usefully. If you have multiple addresses, it can become quite difficult to remember which are which. It's less anonymous but it makes bookkeeping easier. You can search for the address on a block explorer in order to look up all the payments and the final balance. I mention this simply to point out that you don't have to generate a new address for every payment. x) Never share the 24 words of your recovery phrase with anyone else. Always store your recovery phrase in a secure, offline location. Introduction When you own bitcoin, what you really own is a private key that gives you access to your coins. You should be the only one in control of this key - and you need to keep it secure i.e. offline i.e. on a computer that is never connected to the internet. The Ledger Nano S is a small computer that looks like a memory stick. It stores private keys for Bitcoin and for many other cryptocurrencies. The user primarily interacts with an application on an internet-connected computer or smartphone. This application will communicate with the Ledger Nano via a USB cable to ask it to generate addresses and sign transactions (you have to manually permit these operations by pressing buttons on the device). The private keys never leave the Ledger Nano. Things I like: - The intense focus on security - The intense focus on simplicity I haven't been able to think of any way to make the user journey simpler (without compromising robustness). - The concise guidance on their website. - The anti-tampering system Each device has an embedded keypair. It uses the private key to respond to an identity challenge made by the online application. It carries a certificate, signed by Ledger's Issuer Key, that attests that its public key is Ledger-generated. This approach means if an attacker replaces the device in transit with a malicious device, the Ledger application will detect the substitution and inform the user. Source: hyperlink http://developers.ledger.com/docs/nano-app/bolos-features developers.ledger.com/docs/nano-app/bolos-features - The PIN entry protection. 3 unsuccessful PIN entries in a row will reset the device. You must then: - Select a new PIN (which can be the same as the old one). - Enter the recovery phrase. This is time-consuming, but the word entry process is quite clever - letter choices are narrowed down based on the previous letters, and after entering 3 letters, you can then select the specific word from a list. - Re-install the Bitcoin app, using the Ledger Live application on the online computer. I've tested this myself by entering the PIN incorrectly 3 times. I've also tested that the device will remember that an incorrect PIN was entered even if you unplug it afterwards. Things I don't like: - The default address type is Native Segwit. -- It is highly irresponsible to promote Segwit as a default storage method. The primary protection of your bitcoin is the transaction signature, and Segwit removes these from the transactions on the main blockchain and puts them in a separate communication channel between Bitcoin nodes. Hence "Segregated" (removed) and "Witness" (signature) -\> "Segwit". Miners promise to honor this side channel, but may not always do so. If enough miners change their minds in future, any bitcoin stored in Segwit addresses will be at risk of seizure. -- The primary argument made in favour of Segwit is "lower fees" + "higher transaction volumes", because the transactions will be smaller, due to lack of signatures, which take space. But: At 100% Segwit adoption, you'd get at most a 4x increase in block size, so then fees would be 25% of the current fee level. You'd lose the best financial security known to man though, and this security loss is never mentioned by the advocates of Segwit. No one sane makes this engineering trade-off. A reasonable thing to do might be to say something like: "In this small corner of the blockchain e.g. 0.1% of all transactions, we'll sacrifice the security in order to permit a Layer 2 with 10 000% more capacity.". But no, instead, it's always "give up the security in exchange for a relatively small savings in fees and lots and lots of complicated engineering work". Given Ledger's technical competence, I am sure that this is the reason that they chose to make Segwit the default. They think that lower fees and higher blockchain throughput are the most important aspects of Bitcoin's future. I disagree. I think that "being a gold" i.e. a reliable store of value is the most important aspect of Bitcoin's future. Other coins / layers will tackle the problem of high transaction throughput, and will sacrifice some security guarantees in order to do so. - The hiding of standard (secure!) Bitcoin addresses under the "Legacy address" label. You can only see this option by clicking "Show all address types" when you create a new Bitcoin account in the Ledger Live application. -- Standard addresses are one of the linchpins of the whole system. (A future Bitcoin in which standard addresses are not available, where you can only use the new types of addresses, is ... a much less attractive / interesting investment.) Ledger should have set standard addresses as the default, and called them "standard" rather than "legacy". I guess I should be grateful that they included them at all. If Ledger only supported Segwit addresses, I would have strongly recommended against using the Ledger Nano hardware wallet. To use the Ledger Nano S with a smartphone, you will need to additionally buy the OTG Kit (OTG = "On The Go"), which contains 3 cables for connecting the smartphone to the Ledger Nano. Note: Only Android 8+ smartphones are currently supported. The following two sentences were copied from: hyperlink http://www.ledger.com/academy/hardwarewallet/why-you-should-choose-ledger-hardware-wallets www.ledger.com/academy/hardwarewallet/why-you-should-choose-ledger-hardware-wallets When you own bitcoin, what you really own is a private key that gives you access to your coins. You should be the only one in control of this key - and you need to keep it secure.
iQIcBAABAgAGBQJia8GmAAoJEPbcHmFZkVKs5FUP/i4HTb447gjYVYxxGJUotvPs b/FWdyjeQx18v6VHu13PMtzvrB2Ig6vMd6bzkgTabB1LQoCI3gHxfZxxQwlSMYWz Q0YfVjBsHRe5vtn7ruhVPWo+0FHuINWIiXZ2iO1G2DFsEFmoMOSYrrx/csHmS+FX gt9uyhl1nD93laiXdReiPt5FknkAkCUdltWEw4SSZImT4syGPSYaVhf/Fmop+TWQ o3Sb4fPzm+/s09OEjeQ9xnQLt8Fbjl9L/dLSZpY2Z2eZREFhi81oidFWWkcnyaSH TjSTZoAll686D3AmKc3azxt927jsnfuKbgVr67ReAzufCe3mwxTg5NBd5FuVibFw JZpKhujtTLB2eGIg1MPuSiojFw3cCV5Gkyn3ze2fOxZEpl+u4K2GkJRnpGb017tT Xh/3A8FdAQG/r58uKaKABbygzQGdb5nJVc2FdVI43SPppl4veknFNznYrr9EVrw+ 92aXsZYzgXbFGaFsSyW3xes9c/xNROUPuLIDgKRvxlLEkaRYY0iPNk2Hl36eBOyS uqyd1rSCTbTcX75IB4wl9u8+DafMK1wkua8TI4xJ48RS7bzsLPNcuyC+6EeD0EK/ +LeIppbit7Rl3kE+SgaVs4ZrlkvEWyOrOeiN/Ju1cdqFjl/oDF6xZ4j7NGBY3Cre mYBpTau2t8VHdb45i6mO =1P8Z
iQIcBAABAgAGBQJia8RlAAoJECL1OzZgiBhwHg4QAIyCGLhGGwPAasRvqHZN0nM8 qph2rBLCQZRHutdVNuqI4OWuQXDCTHqcucJZYfAMgjUMnGXXKOx5oP46cuXwZ1/1 8acP6/GqVQbHiIuGoJo7tvb8fiO0cShYX3hsbjzEomExceXKrw4f7FKrr+sNuYGn UIhqWuNxZoLbE6ld5qSoEyPGObrqwebegxvcKExLuhjack1x6DXf133Exc1Hlu1R itRgWbr/IktjiGaEwCTzSUOzQvTQUMv3hvhpfsDeFZvg2yvYir2B/C7YTG6kqteT iIuwE4e+448TWgWaN6xmz5qzheKnV5UXtG3CI5fB9SYod7EKlQZqpkiz6Hh86tCB B9zD1+smCLPlYZG8NFuNtkqX9MhI3LmToGXsc2BBi1v22F/4QBtw/yKrJxvQ8IOY l5zB8fbhlqIc57jtmZ/8MQ4uFmJH3ZcAMNJMTTItLgw1m6WDG+wy4vtX7CmL8ohs CiNk6NgqjFftaggC6UDOC61yLsZuqRp2ivOgpO54A/QL1+QsMIFUF65DcHPQ6vhe jflmaG5t60H89QTnjns5xiHWZ3ub1S4JrwdpIiW4E1ezh2uVHBYE30OwABcPr/jM iwkB71H+MjUhPYyafNm8s3GqkyMTQlNr0Y+7Be7ITlZYauXdqG60UMqO4cq1Z8vO 5/GLjGWFtdK8r0xTNFSB =1LlV